However, I don't think that is really the case. There is no doubt that his Contacts file has come into the hands of miscreants but that is not the same thing.
The important thing here is that the e-mail referred to did NOT come from Morris Hickey's e-mail account! It came from an entirely different account which had been deliberately set-up with Morris's name and e-mail address as the sender.
If you still have both the spam mail and a real 'MorrisMail™', you can check this for yourself.
Looking at the spam first, select 'View Source' or 'View Headers' (it will vary depending on which mail client you use on your PC). In the page that follows you will see a lot of information, including several lines which start 'Received: ' - the important one is the very last 'received' entry, which is just above the normal Date/From/Subject/To entries that you normally see, like this:
Received: from [188.8.131.52] by web87312.mail.ird.yahoo.com via HTTP; Fri, 18 Nov 2011 11:58:59 GMT
Date: Fri, 18 Nov 2011 11:58:59 +0000 (GMT)
From: MORRIS HICKEY
Reply-To: MORRIS HICKEY
To: undisclosed recipients: ;
It is the IP address in this line - 184.108.40.206 - that identifies the source of the e-mail. If you do the same thing with a real 'MorrisMail™', you will come up with 220.127.116.11 or similar.
Using a Whois? web look-up service to identify these addresses gives BT Internet for the 'MorrisMail™' but the spam comes from here:
Areti Internet Ltd.
phone: +44 870 950 5950
Not BT, is it? In fact, Areti now trade as Alentus UK and the IP Address record uses a mixture of both names, including both firstname.lastname@example.org and email@example.com for complaints!
As for complaints, I used the excellent SpamCop.net service to report the spam when I first saw it.
The email address on a mail you receive does not have to agree with the service used to send it - in fact, I have several e-mail accounts set up on my PC (using Thunderbird) which uses one server as the default, irrespective of which account I select for identification/return mail.
Anybody who has mail from me sent using a tiscali.co.uk address can easily check this out as above!
I have to be careful if sending mail to large organisations such as Redbridge Council, for example, which bounces my mails because the mail server used does not agree with the return address! Unfortunately, I don't know of anything that can perform similar checks on a home PC.
Morris changed his mail password as soon as he found out about the spam but, as his account wasn't used for the spam attack, that will achieve nothing!
Morris is using a brand new computer, I believe, which begs the question of what happened to the old one? If he no longer has it, or it has recently passed through the hands of a third party, the source of the spam is clear: some lower life form simply copied his Contacts folder from the hard drive!
Hopefully, this attack was a one-off - I certainly haven't seen any more spam in the past week - but the concern now must be that the culprits will sell the address list on. In that case, a lot of us can expect to see masses of spam in the future - from a variety of senders ...
And from servers much further away than Bromley ...!